Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/tCmLmYlubloP-GCwA2sqOX7ur-4.roa
File: tCmLmYlubloP-GCwA2sqOX7ur-4.roa (raw, json)
Hash identifier: mZJtG7Q8fyMq7cvuivmz37U39utBjpiHiLGu2l+nK7o=
Subject key identifier: B4:29:8B:99:89:6E:6E:5A:0F:F8:60:B0:03:6B:2A:39:7E:EE:AF:EE
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 060BCEAF
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/tCmLmYlubloP-GCwA2sqOX7ur-4.roa
Signing time: Fri 24 Jun 2022 11:17:58 +0000
ROA not before: Fri 24 Jun 2022 11:17:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207713
IP address blocks: 193.233.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101437103 (0x60bceaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jun 24 11:17:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4298b99896e6e5a0ff860b0036b2a397eeeafee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dc:d0:6e:ec:c0:ba:05:72:be:da:3d:15:2c:
d9:a8:ae:ae:f9:45:25:a7:c0:da:3e:c1:96:d4:23:
99:2b:23:b8:2d:07:62:5a:4e:8d:cb:ec:0d:9d:e3:
0b:0c:60:bf:f8:b1:a3:ca:6a:cd:b1:8e:11:22:77:
93:cf:79:7c:60:7d:91:64:ad:25:bb:51:5a:15:61:
b2:95:30:d6:78:fb:db:eb:50:1c:62:76:a0:7c:02:
67:e9:fc:f7:d2:42:d7:15:21:f3:e8:be:86:53:73:
9a:40:1e:4b:8c:b8:7f:2f:97:6b:12:eb:0f:bb:50:
4c:b7:c7:f8:63:5e:c2:95:c6:11:9d:03:26:f4:86:
66:26:ce:8b:18:9e:87:44:e0:07:7f:48:00:18:0e:
db:31:c0:99:45:62:1d:dc:eb:10:92:bf:fa:d4:b8:
9b:2e:27:cc:da:3f:af:ab:e7:19:53:a4:39:54:e1:
48:f0:d9:25:0a:a3:99:6b:31:73:25:4e:6b:e9:0c:
ba:9b:34:34:a1:1a:05:c0:d4:a8:98:82:56:ef:4d:
3a:02:1b:a4:73:36:92:4b:93:76:83:3e:13:9b:f5:
ab:21:7d:3a:43:74:d8:47:29:90:9f:79:cc:6b:a2:
71:fe:03:14:d9:b7:57:24:62:d1:34:5f:81:fb:61:
a9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:29:8B:99:89:6E:6E:5A:0F:F8:60:B0:03:6B:2A:39:7E:EE:AF:EE
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/tCmLmYlubloP-GCwA2sqOX7ur-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.17.0/24
Signature Algorithm: sha256WithRSAEncryption
25:ef:a6:ee:c1:06:e8:27:fe:37:26:8a:4e:9f:f5:5e:a5:56:
00:44:15:1b:37:ec:e1:0f:c8:09:3e:d3:b0:d1:ae:0c:3e:ae:
d9:fc:55:55:5f:6f:d5:be:ed:bb:ab:52:51:06:ab:41:62:8c:
16:79:e1:37:3f:27:f1:4a:9a:a6:d2:e8:05:d5:6e:50:96:c1:
3d:c8:96:c4:cf:b4:4c:15:3a:11:f7:37:44:92:6f:06:46:56:
a9:46:93:18:77:e3:03:4a:6c:5f:94:73:0f:b5:d7:1c:16:28:
af:27:9a:ed:41:3c:2a:16:68:a0:cc:4e:b0:ed:61:64:7a:e1:
2b:b8:01:e7:e4:81:c4:91:21:18:65:34:02:25:39:af:be:96:
aa:fe:bb:93:f7:a3:ca:41:e2:38:1c:9c:ae:0c:18:19:dd:50:
56:ef:fe:6e:e8:7a:da:dc:92:0b:fc:b9:5b:f9:ac:1c:38:d6:
dd:9e:fd:e4:e4:7d:46:41:d1:48:4b:7b:39:9b:10:39:36:4c:
5e:cb:1b:d2:ec:93:d3:03:9f:da:bc:37:02:f7:70:da:6c:93:
62:c6:2f:c0:0b:20:f4:d9:e2:df:7e:45:8f:08:2c:4c:68:66:
55:a1:27:30:6a:97:df:46:af:1b:75:0e:f6:8e:72:db:9c:2c:
95:fd:bb:ef
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBgvOrzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDYy
NDExMTc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjQyOThiOTk4OTZl
NmU1YTBmZjg2MGIwMDM2YjJhMzk3ZWVlYWZlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMDc0G7swLoFcr7aPRUs2aiurvlFJafA2j7BltQjmSsjuC0H
YlpOjcvsDZ3jCwxgv/ixo8pqzbGOESJ3k895fGB9kWStJbtRWhVhspUw1nj72+tQ
HGJ2oHwCZ+n899JC1xUh8+i+hlNzmkAeS4y4fy+XaxLrD7tQTLfH+GNewpXGEZ0D
JvSGZibOixieh0TgB39IABgO2zHAmUViHdzrEJK/+tS4my4nzNo/r6vnGVOkOVTh
SPDZJQqjmWsxcyVOa+kMups0NKEaBcDUqJiCVu9NOgIbpHM2kkuTdoM+E5v1qyF9
OkN02EcpkJ95zGuicf4DFNm3VyRi0TRfgfthqQkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS0KYuZiW5uWg/4YLADayo5fu6v7jAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L3RDbUxtWWx1YmxvUC1HQ3dBMnNxT1g3dXItNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHpETANBgkqhkiG9w0BAQsFAAOC
AQEAJe+m7sEG6Cf+NyaKTp/1XqVWAEQVGzfs4Q/ICT7TsNGuDD6u2fxVVV9v1b7t
u6tSUQarQWKMFnnhNz8n8UqaptLoBdVuUJbBPciWxM+0TBU6Efc3RJJvBkZWqUaT
GHfjA0psX5RzD7XXHBYoryea7UE8KhZooMxOsO1hZHrhK7gB5+SBxJEhGGU0AiU5
r76Wqv67k/ejykHiOBycrgwYGd1QVu/+buh62tySC/y5W/msHDjW3Z795OR9RkHR
SEt7OZsQOTZMXssb0uyT0wOf2rw3Avdw2myTYsYvwAsg9Nni335FjwgsTGhmVaEn
MGqX30avG3UO9o5y25wslf277w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:40 2024 by rpki-client on console-fra.rpki-client.org